Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
File: HDRPEVl1lIgoU6eVgd0r94nusx8.mft (raw, json)
Hash identifier: yFEfNGOtA4mGnmax42rHjQxN4Rx19u9cLkAjBaITxZk=
Subject key identifier: 41:7F:AA:AF:FB:F3:42:A4:40:6C:84:CE:19:F0:24:0B:52:0B:CA:A1
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 019E1F10F0FEC6FB37262B442105ED2DFC82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
Manifest number: 16DA
Signing time: Wed 13 May 2026 02:01:04 +0000
Manifest this update: Wed 13 May 2026 02:01:04 +0000
Manifest next update: Thu 14 May 2026 02:01:04 +0000
Files and hashes: 1: HDRPEVl1lIgoU6eVgd0r94nusx8.crl (hash: oXEJpIM2un2LfHrhLSWv5UspTNfuTE3WdQ7CHe8FmeI=)
2: ZoMbhLRe32uOkMK8hwS9ali-Eqw.roa (hash: JRuU+ZyopWBcMt/8KJluZ75llM4qdJd/sZ4QglM1TbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:f0:fe:c6:fb:37:26:2b:44:21:05:ed:2d:fc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: May 13 02:01:04 2026 GMT
Not After : May 14 02:01:04 2026 GMT
Subject: CN=417faaaffbf342a4406c84ce19f0240b520bcaa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e0:3f:b3:ad:83:df:1d:ab:48:14:35:7b:d8:
68:04:d3:a2:69:a7:a1:54:68:b9:c9:cd:e5:0c:9d:
1a:fb:c2:52:d9:5f:c3:c2:75:df:b9:97:ea:ca:bc:
7f:82:a8:06:4b:d3:7f:8c:3c:68:71:1a:0e:36:bc:
1f:51:4c:f1:b6:ab:ac:b1:6b:e0:cc:dd:58:5e:15:
3d:78:99:f5:0e:14:63:83:29:4b:72:9f:fd:4d:b5:
45:d8:be:88:00:7e:a5:e2:46:30:0b:a0:05:16:58:
a6:c4:02:57:d1:62:86:01:c0:e8:34:54:7d:92:25:
ce:6e:7f:cb:1b:75:23:de:eb:9a:e5:64:5b:fe:dd:
2e:4f:ec:3b:e0:e7:0f:da:f5:d3:9d:45:86:a6:39:
73:0a:47:b0:ba:59:47:cc:ae:88:6a:dd:55:70:3c:
96:3f:d3:40:b3:50:73:1d:95:e3:04:6d:1e:ea:4d:
ba:b3:b6:84:e7:63:6f:92:eb:bb:52:f3:b6:f3:e4:
9d:c9:37:86:39:3c:f4:55:87:fe:ee:d1:56:1d:c5:
24:76:d4:32:45:88:18:e8:c9:d4:dd:8e:bc:cf:4d:
78:53:8b:58:53:c2:d4:95:e2:6b:64:3a:63:ee:09:
7b:28:a3:ee:4a:bb:67:de:f6:52:12:d3:cb:f2:30:
75:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7F:AA:AF:FB:F3:42:A4:40:6C:84:CE:19:F0:24:0B:52:0B:CA:A1
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:45:3c:fe:01:36:df:ff:4a:63:83:d1:2d:28:4c:42:77:3a:
9b:44:63:7e:5c:81:43:c3:8d:3e:84:5c:e7:84:0f:de:3f:a7:
57:3b:00:1e:49:24:dc:b3:a1:ab:79:27:30:f2:35:46:e2:63:
95:b5:a7:2e:e8:79:e1:0e:ec:d3:72:e6:b7:ea:38:1c:0e:7e:
de:25:b6:07:62:fa:56:9e:4a:e8:17:9a:ad:a1:c5:bc:21:e6:
94:fe:96:00:fe:da:3d:c7:f0:2c:75:31:2a:a9:a4:87:05:25:
08:e5:e1:e8:6a:47:d5:47:1e:13:de:84:67:0f:0a:cf:f1:0a:
50:d8:f6:b1:4d:4b:3d:10:77:b2:33:29:e4:0f:df:55:85:58:
4a:a9:7d:23:6d:af:96:9e:13:9b:5d:1a:ec:7f:f0:1d:c9:eb:
f7:ae:11:6e:b4:41:71:9b:21:d5:af:f7:3f:2b:de:2d:31:db:
9c:9a:55:4c:77:5a:85:0f:46:f7:73:44:3c:9a:08:81:d3:c2:
c5:14:f2:f5:79:d0:57:37:62:4a:6f:31:c4:20:d4:b4:21:53:
9b:c3:57:d2:12:39:8b:0a:9a:6a:c9:9f:29:ca:0a:89:ba:e8:
e5:1e:6d:48:a1:21:f0:b1:15:5f:71:29:af:d9:b1:16:92:bb:
b4:bf:60:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:53:27 2026 by rpki-client